2Wan 3Lan 6Vlan 3Br

Обсуждение ПО и его настройки
Ответить
P
Сообщения: 1
Зарегистрирован: 16 ноя 2018, 08:19

Хау! Здоровья!
Пжл, помогите найти ошибку!

PointOne(P1) : Hex ->
2 Wan (eth1; eth2); Lan1(eth3); Lan2(eth4); Lan3(eth5);
L2tp (P1.eth1 -> P2.eth1);
Eoip1 (P1.eth1.L2TP -> P2.eth1.L2TP): Eoip1.vlan1; Eoip1.vlan2; Eoip1.vlan3;
Eoip2 (P1.eth2 -> P2.eth2): Eoip2.vlan4; Eoip2.vlan5; Eoip2.vlan6;
Br2 (Lan1(eth3) + Eoip1.vlan1(PathCost10) + Eoip2.vlan4(PathCost20));
Br3 (Lan2(eth4) + Eoip1.vlan2(PathCost10) + Eoip2.vlan5(PathCost20));
Br4 (Lan3(eth5) + Eoip1.vlan3(PathCost10) + Eoip2.vlan6(PathCost20));

/ip route
add distance=1 gateway=Wan2 routing-mark=ether1_r
add distance=1 gateway=Wan2 routing-mark=ether1_pr
add distance=2 gateway=Wan1 routing-mark=1_r
add distance=2 gateway=Wan1 routing-mark=1_pr
add distance=1 gateway=Wan1,Wan2
add disabled=yes distance=2 gateway=Wan1

/ip firewall mangle
add action=mark-connection chain=input in-interface=ether2 new-connection-mark=\
ether1_c passthrough=yes
add action=mark-connection chain=forward in-interface=ether2 \
new-connection-mark=ether1_f passthrough=yes
add action=mark-routing chain=output connection-mark=ether1_c new-routing-mark=\
ether1_r passthrough=yes
add action=mark-routing chain=prerouting connection-mark=ether1_f \
new-routing-mark=ether1_pr passthrough=yes src-address-list="Local Network"
add action=mark-connection chain=input in-interface=ether1 new-connection-mark=\
1_c passthrough=yes
add action=mark-connection chain=forward in-interface=ether1 \
new-connection-mark=1_f passthrough=yes
add action=mark-routing chain=output connection-mark=1_c new-routing-mark=1_r \
passthrough=yes
add action=mark-routing chain=prerouting connection-mark=1_f new-routing-mark=\
1_pr passthrough=yes src-address-list="Local Network"



PointTwo(P2) : Hex ->
2 Wan (eth1; eth2); Lan1(eth3); Lan2(eth4); Lan3(eth5);
L2tp (P1.eth1 -> P2.eth1);
Eoip1 (P2.eth1.L2TP -> P1.eth1.L2TP): Eoip1.vlan1; Eoip1.vlan2; Eoip1.vlan3;
Eoip2 (P2.eth2. -> P1.eth2): Eoip2.vlan4; Eoip2.vlan5; Eoip2.vlan6;
Br2 (Lan1(eth3) + Eoip1.vlan1(PathCost10) + Eoip2.vlan4(PathCost20));
Br3 (Lan2(eth4) + Eoip1.vlan2(PathCost10) + Eoip2.vlan5(PathCost20));
Br4 (Lan3(eth5) + Eoip1.vlan3(PathCost10) + Eoip2.vlan6(PathCost20));

/ip route
add distance=1 gateway=Wan2 routing-mark=ether1_r
add distance=1 gateway=Wan2 routing-mark=ether1_pr
add distance=2 gateway=Wan1 routing-mark=1_r
add distance=2 gateway=Wan1 routing-mark=1_pr
add distance=1 gateway=Wan1,Wan2
add disabled=yes distance=2 gateway=Wan1

/ip firewall mangle
add action=mark-connection chain=input in-interface=ether2 new-connection-mark=\
ether1_c passthrough=yes
add action=mark-connection chain=forward in-interface=ether2 \
new-connection-mark=ether1_f passthrough=yes
add action=mark-routing chain=output connection-mark=ether1_c new-routing-mark=\
ether1_r passthrough=yes
add action=mark-routing chain=prerouting connection-mark=ether1_f \
new-routing-mark=ether1_pr passthrough=yes src-address-list="Local Network"
add action=mark-connection chain=input in-interface=ether1 new-connection-mark=\
1_c passthrough=yes
add action=mark-connection chain=forward in-interface=ether1 \
new-connection-mark=1_f passthrough=yes
add action=mark-routing chain=output connection-mark=1_c new-routing-mark=1_r \
passthrough=yes
add action=mark-routing chain=prerouting connection-mark=1_f new-routing-mark=\
1_pr passthrough=yes src-address-list="Local Network"

При включенном Eoip2 теряются пакеты. Пытался через PathCost в Br и манглы разграничить движение пакетов, но они всравно идут по default gateway...
Нужно, что бы по умолчанию пакеты шли через Eoip2, а в случае обрыва переключались на Lpt2.Eoip1

--


Ответить